Description

WordPress Plugin Download Plugin is prone to an unspecified vulnerability. No available information exists regarding this issue and it's impact on a vulnerable website. WordPress Plugin Download Plugin version 1.6.1 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.6.2 or latest

References

https://plugins.svn.wordpress.org/download-plugin/trunk/readme.txt

Related Vulnerabilities

OpenSSL Cryptographic Issues Vulnerability (CVE-2011-1945)

WordPress Plugin myGallery Remote File Include (1.4b4)

WordPress Plugin Code Snippets Cross-Site Scripting (2.6.1)

WordPress Plugin ArcadePress 'upload.php' Arbitrary File Upload (0.65)

WordPress Plugin Allow REL= and HTML in Author Bios Cross-Site Scripting (.1)

Severity

High

Tags

Missing Update